Why do I get memory-related errors when running Perl scripts?

If you see errors like ld.so.1 memory failures, it usually means resource limits were configured too low during installation. Increase memory limits because many Unix applications require significant virtual memory even if their actual usage appears small.

How can I debug a 500 Server Error in CGIwrap?

Use CGIwrap’s debug mode by accessing scripts through the /cgiwrapd/ path instead of /cgiwrap/. This enables verbose debugging output to help identify issues.

What causes execv() failed errors?

This error usually occurs due to an incorrect interpreter path or Windows-style line endings (control-M characters). Re-upload scripts in ASCII mode or clean the file using a text editor.

CGIWrap Frequently Asked Questions

Q: I am getting the error about the server userid.

CGIwrap must be configured with the same userid that your web server runs as. For Apache servers, this is defined in the User directive inside httpd.conf. You must specify this during CGIWrap compilation using the --with-httpd-user option.

Q: I am getting the error 'Can't ...'. How can I fix this?

CGIwrap must be installed as setuid root. Log in as root, navigate to your cgi-bin directory, and run: chown root cgiwrap and chmod 4755 cgiwrap. This allows CGIWrap to properly switch user contexts.

Q: How do I use CGIwrap with server side includes?

Some Apache configurations allow CGIwrap to be used with server-side includes using a virtual include path. However, this can introduce security risks unless execution is restricted to ExecCGI-enabled directories. Additional patches may be required depending on your setup.

Q: I am getting the error 'setgroups() failed!'. What is wrong?

This error occurs when CGIwrap cannot assign auxiliary groups for the user. Ensure CGIwrap is installed with setuid root permissions. Alternatively, disable auxiliary group handling if it is not required.

Q: How do I get PHP to work with CGIwrap?

Install CGIwrap first and verify it works with standard CGI scripts. Then compile PHP as a CGI binary instead of an Apache module. Use the --enable-discard-path option when configuring PHP, place the binary in /usr/local/bin, and add #!/usr/local/bin/php to your scripts. This ensures compatibility with CGIwrap execution.

Q: How do I use cgiwrapd on a Cobalt RaQ?

To use cgiwrapd, call your script through the cgiwrapd path instead of directly. For example, use /cgiwrapDir/cgiwrapd/script.cgi. The cgiwrapDir is typically defined as a ScriptAlias to the CGIwrap installation directory.

CGIWrap Questions and Answers

The answers below keep the original guidance but present it in a cleaner, more personable format so the page reads more like a helpful knowledge base and less like a raw document dump.

Administrative Questions

I am getting the error about the server userid.

CGIwrap needs to be configured with the userid that your web server is running as. For Apache based servers, this is the userid that is listed on the User line in httpd.conf. You specify this when configuring CGIWrap using the --with-httpd-user option.

I am getting the error "`Can't ...`". How can I fix this?

CGIwrap needs to be installed set-uid to root. Log in as root, change to the server's cgi-bin directory, and issue the following commands:

chown root cgiwrap
chmod 4755 cgiwrap

How do I use CGIwrap with server side includes?

This is not supported by all web servers, but with Apache, use:

<!--#include virtual="/cgi-bin/cgiwrap/user/script...."-->

One of the problems is that this often is a security hole unless you can enable server side exec or virtual include only of executables that are in ExecCGI capable directories. Some people have made patches that will allow this to work. Ask on the list for details.

I am getting the error "`setgroups() failed!`". What is wrong?

This occurs when CGIwrap is unable to set auxilliary groups. Auxilliary groups are groups that a user is a member of in /etc/group, that are not the user's primary group in /etc/passwd. Two things you can do here are to make sure CGIwrap is installed correctly, since it has to be setuid root to be able to set auxilliary groups, or disable setting auxilliary groups.

`ld.so.1: /net/bin/perl: fatal: /usr/lib/libintl.so.1: can't map file: errno=12`

This indicates that you installed cgiwrap with resource limiting, with rlimit support, but the limits are set too low. There is not enough memory for Perl to load. Keep in mind that Unix applications usually use a lot of virtual memory, even though their resident size is small.

How do I get PHP to work with cgiwrap?

Here is an informal how-to written after setting up cgiwrap and PHP together. Much thanks goes to Nathan Nuelinger for pointing out the decisive step of compiling with --enable-discard-path.

Download cgiwrap and set that up first. It is best to get CGIwrap working with some simple CGI script tests before moving on. Options you may find helpful include --with-cgi-dir and --with-httpd-user.

Download the latest version of PHP and configure it as a CGI binary, not as a module. Basically, if you run ./configure with no options, PHP will be compiled as a CGI binary. To set it up as an Apache module, which you do not want if you are wrapping your scripts, you would have to explicitly say ./configure --with-apache.

Before you compile PHP, however, and this is crucial, configure PHP with the option --enable-discard-path. This allows you to move the PHP binary out of the web tree and into /usr/local/bin, which adds security, but more importantly it allows you to use PHP with CGIwrap properly.

To summarize, you need to run ./configure --enable-discard-path plus any other options you may desire, and place the PHP binary in /usr/local/bin.

Finally, you need the line #!/usr/local/bin/php at the very top of every PHP script you write. Then call the PHP script with CGIwrap exactly as you would call a CGI script.

For example:

https://yourdomain.com/cgi-bin/cgiwrap/<username>/<phpscript>

User Questions

I am getting a 500 Server Error, how can I debug my script?

CGIwrap supports a debugging mode which can help to debug scripts. To use it, call CGIwrap via the URL https://.../cgiwrapd/... instead of https://.../cgiwrap/....

I am getting the error `execv() failed`.

This generally results from either having the wrong path to Perl, or having control-M characters after the path to Perl. This is usually a result of uploading the script in binary mode instead of ASCII.

You can fix this by re-uploading the script in ASCII mode, or using vi, Perl, or another editor to get rid of the control-M characters in the file.

For some situations, simply adding -- to the end of the first line of the script will cause the error to go away, sometimes not.

How do I use cgiwrapd on a Cobalt RaQ?

cgiwrapd is still there, it just is not directly obvious how to use it. If you normally call your script as:

https://www.site1.com/test.cgi

you can call it as:

https://www.site1.com/cgiwrapDir/cgiwrapd/test.cgi

to run it under cgiwrapd. Basically they ScriptAlias cgiwrapDir to the directory where cgiwrap is installed.

As a whole, this FAQ highlights the most common CGIWrap trouble spots: server user mismatches, setuid installation requirements, group-setting failures, resource limits, interpreter path problems, and debugging workflow. Those are exactly the areas that tend to slow down first-time setups, so having them collected here adds real value for both users and administrators.